shamp: Add SEPolicy and compat matrix for shamp
Bug: 329367768 This is the basic SELinux setup for a HAL. Since this lives in gs-common and not all pixel devices will have the corresponding vendor manifest, this hal will have to be marked as optional. Test: If this was configured incorrectly, then the build should fail Doc: go/shared-modem-platform-cpp-backend Change-Id: I6dd0ee3d68ff226e14e3bdffe2e828c1184c1a01
This commit is contained in:
kierancyphus
Kieran Cyphus
parent
c14a6a75cc
commit
d26d8270ff
6 changed files with 25 additions and 0 deletions
1
modem/shared_modem_platform/sepolicy/attributes
Normal file
1
modem/shared_modem_platform/sepolicy/attributes
Normal file
|
|
@ -0,0 +1 @@
|
|||
hal_attribute(shared_modem_platform)
|
||||
|
|
@ -0,0 +1,8 @@
|
|||
# Allow binder connection from client to server
|
||||
binder_call(hal_shared_modem_platform_client, hal_shared_modem_platform_server)
|
||||
|
||||
# Allow client to find the service, server to register the service
|
||||
hal_attribute_service(hal_shared_modem_platform, hal_shared_modem_platform_service)
|
||||
|
||||
# Allow binder communication from server to service_manager
|
||||
binder_use(hal_shared_modem_platform_server)
|
||||
1
modem/shared_modem_platform/sepolicy/service.te
Normal file
1
modem/shared_modem_platform/sepolicy/service.te
Normal file
|
|
@ -0,0 +1 @@
|
|||
type hal_shared_modem_platform_service, hal_service_type, service_manager_type;
|
||||
2
modem/shared_modem_platform/sepolicy/service_contexts
Normal file
2
modem/shared_modem_platform/sepolicy/service_contexts
Normal file
|
|
@ -0,0 +1,2 @@
|
|||
# Bind Shared Modem Platform AIDL service name to the SELinux type.
|
||||
com.google.pixel.shared_modem_platform.ISharedModemPlatform/default u:object_r:hal_shared_modem_platform_service:s0
|
||||
Loading…
Add table
Add a link
Reference in a new issue